Forth Vending Co., Ltd. (hereinafter referred to as the "Company") attaches great importance to the protection of personal data and respects the privacy and security rights of Personal information of service users Therefore, this Personal Data Protection Policy has been created with strict measures to protect the security of personal information to ensure that the personal information of users received by the Company will be used. used in accordance with the needs of service users and in accordance with

Personal Data Protection Act B.E. 2562 and related laws This policy describes howthat the company treats personal information of service users so that data owners are aware of the Company's personal data protection policy The Company therefore announces the Personal Data Protection Policy as follows:

 

1. What is this policy for?

This policy is used to inform the service user as the owner of personal information. know the purpose and details of the collection, use and disclosure of personal data as well as the legal rights of service users relating to personal data

 

2. What personal data? that the company has collected, used and disclosed

    2.1 Personal data is information that can identify the user of the service. whether directly or indirectly, including

1). Personal information that users provide directly to the company or through the company Or existing with the company, both arising from using services and products, contacting, visiting, searching through electronic channels, website, customer service center (Call Center), authorized person or any other channel

2). Personal data that the Company receives or accesses from other sources which is not directly from users such as government agencies Companies in the financial business group financial institution financial service provider business partner credit information company and data service providers, etc., which the Company will collect information from other sources. Only with the consent of the service user as required by law, unless the Company is necessary as permitted by law.​

3). Personal information of service users that the company has collected, used and disclosed such as

• Personal information such as name-surname, age, date of birth ID number

• Contact information such as residential address, workplace, telephone number, email address.

• Financial information such as bank account numbers

• Transaction information such as payments, loans

• Device or tool information such as IP address MAC address Cookie ID

• Other information such as website usage, audio, still images, and animations and any other information that is considered personal data under the Personal Data Protection Laws.

   2.2 Sensitive Data is personal data that is specifically required by law. The Company will collect, use and disclose sensitive personal information. Only when the company has received the express consent of the service user. or in the event that the Company is necessary as permitted by law The company will be able to collect, use and disclose personal data, biometric data such as facial image data. fingerprint simulated data iris simulation data voice identity information For the purpose of proving and verifying the identity of the user who applies for the service and conducts financial transactions through electronic channels, website, call center or any other channels, etc.

    Further in this policy If not specifically mentioned, it will be called. “Personal Data” and “Sensitive Personal Data” relating to users of the above services. Let's collectively be called "Personal Information"

 

3. The company collects, uses and discloses personal information of service users. for what purpose

The company will collect personal information of service users. for the benefit of service users in using services and products As well as to comply with any laws that the Company or the User must comply with. and for any other purposes specified in this policy as follows:

3.1 To allow users to use the services and products of the company that meet the objectives of the users. and for other purposes necessary under the law.

1).so that users can use the services and products of the company according to the wishes of the usersThe service is a contract with the company. or to take action on the request of the service user before using the service and the company's products (contractual basis), such as

1. Company membership approval consideration

2. Any actions related to the provision of services and products, such as processing, contacting, various notifications about the service and products debt collection follow-up

2). To perform duties under relevant or applicable laws (Legal Obligation) such as

1. Compliance with orders of legal authority

2.Compliance with the Regulated Payment Systems Law Securities and Exchange Law Tax Law Anti-Money Laundering Laws Prevention and Suppression of Terrorism and Proliferation of Weapons of Mass Destruction Financing Laws computer law bankruptcy law and other laws that the company is required to comply with. Including announcements and regulations issued according to such laws.

    If the company needs to collect, use and disclose personal information of service users. for the compliance with the law of the company or entering into contracts with service users The Company may not be able to deliver services and products to users. (or unable to provide services and products to users further) if the Company is unable to collect personal information of users upon request.

3). To carry out necessary operations under the legitimate interests of the Company. or of another person or juristic person without exceeding the extent that the service user can reasonably expect (Legitimate Interest), for example 

1. Voice recording through the Customer Service Center (Call Center) for security, such as
CCTV recording of card exchange before entering the building
2. Maintaining relationship with service users such as handling complaints satisfaction assessment Taking care of service users by employees of the company Notifying or offering services and products of the same kind as the User's existing with the Company which is of benefit to the User.
3. Risk Management supervision internal management Including forwarding to companies in the same business for such purposes. under the personal data protection policy of the group of companies (Binding Corporate Rules)
4. Making personal information non-personally identifiable (Anonymous Data)
5. Collection, use and disclosure of personal information of directors Person authorized to act on behalf of service representatives, sub-agents Representatives of juristic person users
6. Contact, photo recording, audio recording about meetings, training, recreation, CRM activities or booths.
7. Collection, use and disclosure of personal data of persons under receivership order
8. Receiving and sending parcels and documents

3.2 To allow users to benefit from the use of services and products. As the service user chooses to give consent, such as

1). To provide users with better services and products. and in line with the needs of service users
2). To allow users to receive offers Exclusive benefits, advice and news, including the right to participate in special events.

    regardless of whether it is a service or product. Benefits, promotions, news or special events of the company itself. or companies in the financial business group or companies in the financial institution group or companies in the insurance business group or of persons the Company is an agent, broker, supplier or of business partners. or of third parties who are related to the Company depending on the case where the service user has given consent

 

4. Legal rights of service users

The Personal Data Protection Act aims to keep the personal data of service users in more control of the service users. The service users can exercise their rights according to the Personal Data Protection Act, which are as follows: according to the channels specified by the company

4.1  Right to access and obtain a copy of personal data

have the right to access and receive a copy of the user's personal information held by the Company Unless the company has the right to refuse the user's request by law or court order. or in the event that the user's request will have an effect that may damage the rights and liberties of other persons   

4.2 Right to request correction of personal data

have the right to request the company to make corrections or update the user's personal information that is inaccurate or incomplete
4.3 Right to request deletion of personal data of service users

Have the right to request the company to delete or destroy the user's data or make the user's information non-personally identifiable. Unless the Company has a legitimate reason to refuse the User's request.

4.4  Right to request suspension of use of personal information

have the right to request the Company to suspend the use of the User's personal information in certain circumstances (for example, the Company is in the process of investigating the right to correct the personal information or objecting to the collection, use or disclosure of the User's personal information or the user requests the Company to suspend the use of personal information instead of deleting or destroying the personal information that is no longer needed Because the service users are required to request the company to retain their personal information for use in establishing legal claims. Compliance with or exercising legal claims or raising against legal claims)

4.5  Right to object to the collection, use or disclosure of personal data

Have the right to object to the collection, use or disclosure of the user's personal information in the event that the company operates under the legitimate interests. or for direct marketing or scientific research purposes. Historical or statistical, unless the Company has legitimate grounds to deny the User's request (for example, the Company can demonstrate that the collection, use or disclosure of the User's personal information is for a more legitimate reason or to establish legal claims Compliance with or exercise of legal claims or for the public interest of the company)

4.6 Right to obtain or request to send or transfer personal data

Users have the right to obtain personal information of users in the event that the Company can make such information in a readable or generally usable format with tools or devices that work automatically and can use or disclose personal information. individuals by automated means. Including the right to request the company to send or transfer the user's personal information to third parties. or obtain personal information that the Company has sent or transferred to a third party unless the Company cannot do so due to technical conditions or the company has legitimate grounds for denying the user's request

4.7 Right to withdraw consent

Have the right to withdraw the consent that the service user has given to the company at any time. According to the procedures and methods specified by the company However, the withdrawal of consent of the service users will not affect the collection, use or disclosure of personal data of the service users who have given their consent. before withdrawing such consent Users can check and change their consent to the use or disclosure of personal information for marketing purposes through the rights exercise channel attaobincallcenter@forthvending.co.thor call center 02-114-7134  or other channels specified by the company in the future

4.8 Right to complain

have the right to complain to the Personal Data Protection Committee or the Office of the Personal Data Protection Committee If the company acts in violation of the Personal Data Protection Act

​

5. To whom may the Company disclose personal information of users?

5.1 The Company may disclose personal information of service users. To others under the consent of the service user. or under the criteria permitted by law to be disclosed The person or entity that is the recipient of such information will collect, use and disclose the user's personal information to the extent that the user has given consent. or the scope involved in this policy

5.2 The Company may disclose personal information of users for various purposes such as to provide services to users. To analyze and develop services and products for research or statistical data preparation for the promotion and public relations of the company for business administration for fraud prevention to allow others to provide support services to the Company for user authentication The company may disclose to individuals or entities such as companies in the financial institution group. Companies in the financial business group Companies in the insurance business group Personal data processor Co-branded business partners, outsourced service providers company representative subcontractor financial institutions, auditors, external auditors credit information company legal authority Any juristic person or person having a relationship or contract with the Company. This includes executives, employees, contractors, contractors, agents, consultants of the company and of persons or entities that receive such information.

 

 

          If the user has any questions about the terms and conditions of service "Collection, use and disclosure of personal information" of service users According to the Personal Data Protection Act B.E. 2562, you can ask for more information at customerservice@tao-bin.com or telephone 02-114-7134